This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/A5307E284CEF11F092F69C81C4F9AE02.roa File: A5307E284CEF11F092F69C81C4F9AE02.roa (raw, json) Hash identifier: NueXyl/XXL0VGOCl66CcbBULAMXN/ef3HI5ahPgb/jc= Subject key identifier: 61:35:8D:F7:FF:D9:CF:EB:00:67:CE:BC:5D:B2:52:DD:92:06:5F:71 Certificate issuer: /CN=A91871C2/serialNumber=A9EABC2465116ED11D6C8CDAE2011237CF1F59DF Certificate serial: 07E4 Authority key identifier: A9:EA:BC:24:65:11:6E:D1:1D:6C:8C:DA:E2:01:12:37:CF:1F:59:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qeq8JGURbtEdbIza4gESN88fWd8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/A5307E284CEF11F092F69C81C4F9AE02.roa Signing time: Sun 18 Jan 2026 08:27:39 +0000 ROA not before: Sun 18 Jan 2026 08:27:38 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 139009 IP address blocks: 14.1.100.0/24 maxlen: 24 14.1.101.0/24 maxlen: 24 14.1.102.0/23 maxlen: 23 14.1.102.0/24 maxlen: 24 14.1.103.0/24 maxlen: 24 103.126.150.0/24 maxlen: 24 103.161.168.0/23 maxlen: 24 202.173.120.0/22 maxlen: 22 202.173.120.0/23 maxlen: 23 202.173.120.0/24 maxlen: 24 202.173.121.0/24 maxlen: 24 202.173.122.0/23 maxlen: 23 202.173.122.0/24 maxlen: 24 202.173.123.0/24 maxlen: 24 2407:d40::/32 maxlen: 32 2407:d40::/36 maxlen: 36 2407:d40::/48 maxlen: 48 2407:d40:f::/48 maxlen: 48 2407:d40:100::/48 maxlen: 48 2407:d40:101::/48 maxlen: 48 2407:d40:102::/48 maxlen: 48 2407:d40:103::/48 maxlen: 48 2407:d40:106::/48 maxlen: 48 2407:d40:107::/48 maxlen: 48 2407:d40:108::/48 maxlen: 48 2407:d40:109::/48 maxlen: 48 2407:d40:10f::/48 maxlen: 48 2407:d40:114::/48 maxlen: 48 2407:d40:122::/48 maxlen: 48 2407:d40:126::/48 maxlen: 48 2407:d40:140::/48 maxlen: 48 2407:d40:142::/48 maxlen: 48 2407:d40:201::/48 maxlen: 48 2407:d40:202::/48 maxlen: 48 2407:d40:203::/48 maxlen: 48 2407:d40:204::/48 maxlen: 48 2407:d40:205::/48 maxlen: 48 2407:d40:206::/48 maxlen: 48 2407:d40:207::/48 maxlen: 48 2407:d40:208::/48 maxlen: 48 2407:d40:8000::/48 maxlen: 48 2407:d40:8004::/48 maxlen: 48 2407:d40:8007::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/qeq8JGURbtEdbIza4gESN88fWd8.crl rsync://rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/qeq8JGURbtEdbIza4gESN88fWd8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qeq8JGURbtEdbIza4gESN88fWd8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 21:02:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2020 (0x7e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91871C2, serialNumber=A9EABC2465116ED11D6C8CDAE2011237CF1F59DF Validity Not Before: Jan 18 08:27:38 2026 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=696c997a-9980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:eb:8d:f6:de:fd:84:49:d4:18:78:a0:5e:5c: 66:77:9d:5a:3b:d3:99:1a:7f:0b:e6:8d:47:d2:5b: 15:6d:cc:1d:58:c8:ef:51:55:e6:b7:04:29:8f:92: c4:32:60:33:b0:57:b5:06:94:39:18:27:e1:84:2f: 26:12:a1:7a:39:f5:8f:35:ac:48:c7:bf:03:a5:b7: 02:31:9f:13:0f:b9:7c:14:58:f7:1f:4f:2a:75:f3: eb:57:0c:c8:ad:28:a6:5a:a1:fb:69:fb:47:01:9a: ed:8e:86:f9:a6:0f:72:70:b3:9e:05:fb:8d:1f:1a: fb:a6:fb:a0:26:1d:30:a2:3b:a0:2a:25:4a:c1:ee: 14:37:1f:6c:7e:6e:a9:47:f8:ec:c4:84:52:f8:b3: 91:34:9c:83:55:64:2a:cb:ec:6c:c5:07:42:57:e3: cb:7b:58:fb:3b:5c:ee:a0:22:65:cb:72:67:fe:97: 9f:1c:d9:91:ac:aa:37:bd:11:03:46:60:28:f8:49: 25:52:fb:0e:3e:17:f1:85:c7:7e:db:14:23:94:97: 22:d4:d8:6e:40:6c:bf:14:06:f0:16:5c:a2:52:14: 38:19:1c:07:53:fa:06:b8:ff:d7:ef:ce:a4:64:9f: 80:60:38:0e:ab:ba:a4:92:a5:8c:06:4b:73:33:a6: 86:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:35:8D:F7:FF:D9:CF:EB:00:67:CE:BC:5D:B2:52:DD:92:06:5F:71 X509v3 Authority Key Identifier: keyid:A9:EA:BC:24:65:11:6E:D1:1D:6C:8C:DA:E2:01:12:37:CF:1F:59:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/qeq8JGURbtEdbIza4gESN88fWd8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qeq8JGURbtEdbIza4gESN88fWd8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91871C2/DE61666855A911EB99AFDA5DC4F9AE02/A5307E284CEF11F092F69C81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.1.100.0/22 103.126.150.0/24 103.161.168.0/23 202.173.120.0/22 IPv6: 2407:d40::/32 Signature Algorithm: sha256WithRSAEncryption 48:ad:53:5c:5c:21:19:f9:fb:71:2d:07:46:b9:ff:1a:87:d2: e5:17:bb:38:8d:9e:d1:03:73:8f:ce:d4:7d:0f:51:86:5f:03: 3d:a3:c2:fc:64:29:91:4e:4d:d5:a7:a4:b1:ea:d3:be:f2:4e: ad:58:94:af:77:dd:f9:6b:07:1a:ec:76:bf:9d:68:19:29:59: b3:13:f5:29:80:18:43:05:f4:bf:02:22:2c:6b:26:bb:ed:0d: 53:21:84:8a:87:99:05:57:c8:49:6b:19:5b:ee:ac:32:7d:79: 76:f0:1c:85:69:6f:9a:79:f6:9a:6e:99:b0:28:51:d8:fe:b2: 5d:c1:ee:ff:c4:cb:27:7b:b1:81:31:c4:ad:19:dd:2b:7a:0d: 44:77:0c:8e:c2:1e:91:8e:2c:b0:73:e5:c9:b4:0d:dc:42:b3: 6b:d3:73:4b:4a:97:bb:5f:6e:5b:a3:5b:2a:b9:dc:a1:5e:90: e2:85:3c:e9:44:06:d1:c9:5b:9d:dc:61:f5:d8:39:9a:07:f3: 6a:f6:df:f8:99:3a:13:40:e8:aa:81:d4:ee:a7:23:40:75:6f: 49:d7:1a:44:d6:fe:fe:29:10:94:3b:ba:d5:10:6e:2a:ba:b7: 66:3f:58:1c:05:ed:aa:d8:02:ea:84:05:8a:85:c4:0b:a1:4d: 51:f6:94:c9 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICB+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx ODcxQzIxMTAvBgNVBAUTKEE5RUFCQzI0NjUxMTZFRDExRDZDOENEQUUyMDExMjM3 Q0YxRjU5REYwHhcNMjYwMTE4MDgyNzM4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTZjOTk3YS05OTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveuN9t79hEnUGHigXlxmd51aO9OZGn8L5o1H0lsVbcwdWMjvUVXmtwQpj5LE MmAzsFe1BpQ5GCfhhC8mEqF6OfWPNaxIx78DpbcCMZ8TD7l8FFj3H08qdfPrVwzI rSimWqH7aftHAZrtjob5pg9ycLOeBfuNHxr7pvugJh0wojugKiVKwe4UNx9sfm6p R/jsxIRS+LORNJyDVWQqy+xsxQdCV+PLe1j7O1zuoCJly3Jn/pefHNmRrKo3vRED RmAo+EklUvsOPhfxhcd+2xQjlJci1NhuQGy/FAbwFlyiUhQ4GRwHU/oGuP/X786k ZJ+AYDgOq7qkkqWMBktzM6aGMwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFGE1jff/ 2c/rAGfOvF2yUt2SBl9xMB8GA1UdIwQYMBaAFKnqvCRlEW7RHWyM2uIBEjfPH1nf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzFDMi9ERTYxNjY2ODU1 QTkxMUVCOTlBRkRBNURDNEY5QUUwMi9xZXE4SkdVUmJ0RWRiSXphNGdFU044OGZX ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FlcThKR1VSYnRFZGJJemE0Z0VTTjg4ZldkOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODcxQzIvREU2MTY2Njg1NUE5MTFFQjk5QUZEQTVEQzRGOUFFMDIvQTUzMDdFMjg0 Q0VGMTFGMDkyRjY5QzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAIOAWQDBABnfpYDBAFnoagDBALKrXgwDQQCAAIwBwMFACQH DUAwDQYJKoZIhvcNAQELBQADggEBAEitU1xcIRn5+3EtB0a5/xqH0uUXuziNntED c4/O1H0PUYZfAz2jwvxkKZFOTdWnpLHq077yTq1YlK933flrBxrsdr+daBkpWbMT 9SmAGEMF9L8CIixrJrvtDVMhhIqHmQVXyElrGVvurDJ9eXbwHIVpb5p59ppumbAo Udj+sl3B7v/Eyyd7sYExxK0Z3St6DUR3DI7CHpGOLLBz5cm0DdxCs2vTc0tKl7tf blujWyq53KFekOKFPOlEBtHJW53cYfXYOZoH82r23/iZOhNA6KqB1O6nI0B1b0nX GkTW/v4pEJQ7utUQbiq6t2Y/WBwF7arYAuqEBYqFxAuhTVH2lMk= -----END CERTIFICATE-----Generated at Sun Jan 25 15:24:35 2026 by rpki-client